UCSF home page UCSF home About UCSF Search UCSF UCSF Medical Center

image of letter Email

blank Access mail@ucsf
blank Update spam filter
blank Reset password

image of lock VPN

blank Login to vpn@ucsf
blank VPN Help

image of phone Help

blank Login to help@ucsf
blank email us
blank Call (415) 514-4100,
blank Option 2




Advanced Search
Recent Changes

Adobe Flash Vulnerability - Currently Being Exploited

Adobe has released Security advisory APSA09-03, which describes a vulnerability affecting Adobe Flash. Other Adobe applications that include the Flash runtime, such as Adobe Reader 9, are also affected.

An attacker could exploit this vulnerability by convincing a user to visit a website that hosts a specially crafted SWF file. The Adobe Flash browser plugin is available for multiple web browsers and operating systems, any of which could be affected. An attacker could also create a PDF document that has an embedded SWF file to exploit the vulnerability.

This vulnerability is being actively exploited.

For a complete description of the vulnerabilities and affected software, refer to  Adobe Security Bulletins: APSA09-03.

AFFECTED SOFTWARE:

WHAT YOU NEED TO DO TO PROTECT YOUR SYSTEM:

1. Do NOT take action if you have a Computer Support Coordinator (CSC); they will apply the update for you or assist in instructing you.

2. If you do not have a CSC:

Refer to Adobe Security Bulletins: APSA09-03 on how to obtain the latest updates for your specific software.

*Refer to US-CERT Cyber Security Alert SA09-161A for instructions.

ADDITIONAL INFORMATION:

If you have questions about any of the information provided above, you may send email inquiries to security@ucsf.edu.

Teresa A. Regalia, GCIH
UCSF Enterprise Information Security
Telephone: 415-502-1567
Teresa.Regalia@ucsf.edu

OAAIS Customer Support Service Desk
7 a.m. - 6 p.m., Mon – Fri
(415) 514-4100, Option 2
customersupport@ucsf.edu
help.ucsf.edu

Please tell us what you think of our website